FreshPorts - VuXML
This page displays vulnerability information about FreeBSD Ports.
The last vuln.xml file processed by FreshPorts is:
List all Vulnerabilities, by package
List all Vulnerabilities, by date
These are the vulnerabilities relating to the commit you have selected:
|dee44ba9-08ab-11e2-a044-d0df9acfd7e5||OpenX -- SQL injection vulnerability|
A vulnerability has been discovered in OpenX, which can be
exploited by malicious people to conduct SQL injection
Input passed via the "xajaxargs" parameter to
www/admin/updates-history.php (when "xajax" is set to
"expandOSURow") is not properly sanitised in e.g. the
(lib/OA/Upgrade/DB_UpgradeAuditor.php) before being used in SQL
queries. This can be exploited to manipulate SQL queries by
injecting arbitrary SQL code.
The vulnerability is confirmed in version 2.8.9. Prior versions
may also be affected.